Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
14155179926713b5c2a9c61a1b89a055_JaffaCakes118
-
Size
32KB
-
Sample
241004-tvvaqstgpj
-
MD5
14155179926713b5c2a9c61a1b89a055
-
SHA1
5e7b85c9fc39892974d68f1d2f4e9326660a40e3
-
SHA256
d6975169935130df15684d2f21c6e12d5748f2423d4e18b92af88fbe9c0bb7dd
-
SHA512
1681a9ffcb4de9baf8973f091d81bc57def6ff1dac5b0b90b5d6b1f02a3723fd2afbf6a9919a4e0037775eb14c6991e4f3674729b33f959ff91bafeba7541428
-
SSDEEP
768:QhzsIdmoIBW+J1aLu+iANtg9bPHhHXPNWNCB+Gc1H8zHvc:QJsIdmoIBW+faS2tg9zxB+52Dvc
Malware Config
Targets
-
-
Target
14155179926713b5c2a9c61a1b89a055_JaffaCakes118
-
Size
32KB
-
MD5
14155179926713b5c2a9c61a1b89a055
-
SHA1
5e7b85c9fc39892974d68f1d2f4e9326660a40e3
-
SHA256
d6975169935130df15684d2f21c6e12d5748f2423d4e18b92af88fbe9c0bb7dd
-
SHA512
1681a9ffcb4de9baf8973f091d81bc57def6ff1dac5b0b90b5d6b1f02a3723fd2afbf6a9919a4e0037775eb14c6991e4f3674729b33f959ff91bafeba7541428
-
SSDEEP
768:QhzsIdmoIBW+J1aLu+iANtg9bPHhHXPNWNCB+Gc1H8zHvc:QJsIdmoIBW+faS2tg9zxB+52Dvc
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2